GrapheneOS Owner user VPN is used for system services.

It all makes sense at a technical level it is designed the way it is. All I am saying, it is not obvious to the user that is how it works. It wasn't even obvious to me, I had to ask you. So it will absolutely not be obvious to your average activist or journalist. That is why I ended my message with "usable security". That is the context in which my criticism should be viewed. It isn't obvious to users that sending your network location over a VPN compromises your anonymity either.

Best way to protect users from harming their own anonymity would be to assume they have zero technical knowledge of the system, and then make it easy for them to set things up the right and secure way, and hard for them to set it up the wrong way. Clear and concise warnings goes a long way to accomplish this.

      GrapheneOS I am a bit confused in how to use this. Going to Location->Location Services->Network Location allows me to turn it on. It says it uses WiFi scanning to help find your location. Does that mean I need to turn on Location->Location Services->Wi-Fi scanning for this to work? What is the point of bluetooth scanning if network location only uses WiFi scanning?

          n2gwtl additionally, I use owntracks for providing my location to other apps. Own tracks is set to record location only during significant changes to position. I am not sure how this works, but I assume the OS is indicating to the app that a significant change in position has happened which triggers owntracks to request the location. This works mostly fine with network location off. When network location is set to GrapheneOS, owntracks is requesting location every 3-10 mins even when it is on a table for 8 hours.

            13 days later

            @GrapheneOS referencing this again as I believe this got lost during the major Android quarterly update work.

            n2gwtl If you enable network location by itself, it will work when Wi-Fi enabled. If you enable Wi-Fi scanning, it will also be able to do Wi-Fi scans when Wi-Fi is otherwise disabled. Read the description of Wi-Fi scanning. Bluetooth and Wi-Fi scanning toggles are standard Android toggles enabled by default on the stock OS. They are not specific to our network location implementation but rather impact any apps granted the required permission to do scans.

              Murcielago

              Murcielago support for blocking callers who are not in the contacts

              I tried to do this two days ago and could find no way to block a spam caller. I sure as heck didn't want to add the jerk to my contacts list.

                    SteveC On which OS release? There's an "Add a number" UI in the Phone app within the Blocked numbers menu.

                        GrapheneOS Build number 2025031400 (i.e. later than this).

                        So I have to go to a special "blocked numbers" area to add a number?

                        Why cant I just do that from the calls log, when I am looking at the number of the loser? There ought to be a "block number" option there.

                            SteveC That's the standard UI for it. We could add another UI later when we heavily fork AOSP Dialer into a standalone app, which we haven't done yet, and other apps are being done first.

                              GrapheneOS

                              GrapheneOS There's an "Add a number" UI in the Phone app within the Blocked numbers menu.

                              Actually I can't find the blocked numbers menu. The three vertical dots dropdown just has "Call history" and "settings", the options at the bottom are favorites, recents and contacts. None of these destinations appears to have anything either.

                              In your other reply you said this was the standard UI yet every regular Android device I've ever used has easy access to block the number, so I guess Android doesn't follow the referenced standard.

                                    SteveC Sorry if I have misunderstood, but you can just hold press the number in your call history and block the number... Or you can add a number to the block list manually by going to the three dots menu, settings, blocked numbers, add number.

                                        Lilac6044

                                        Lilac6044 Sorry if I have misunderstood, but you can just hold press the number in your call history and block the number... Or you can add a number to the block list manually by going to the three dots menu, settings, blocked numbers, add number.

                                        No, I can't. If holding down sent me to a "block number" option, I'd have no complaint. Instead, I have "Copy Number" "Edit number before call" and "Delete"

                                        And under settings, all I see are "Display options" "Sounds and vibration" "Call recording" "Quick responses" "Calling acocunts" and "about."

                                              SteveC Hi, that is odd. Sorry I could not be more help... I hope someone else can chime in with a suggestion as I can block numbers the way I outlined. Weird that you do not have the options. Best of luck.

                                                SteveC what version do you have in about? since it seems like there are 3 options missing for you. (Including the block numbers option)

                                                  SteveC i think i did figure it out. I think you are in a user profile. Tje block number and other menu options seem to not.appear in a user profile.

                                                  You need to use the owner profile for these settings.
                                                  Or atleast it is like this on my device

                                                      SteveC
                                                      Other manufacturers has AOSP as a base and add their own apps on top so they do most likely not build their dialer apps on a AOSP dialer fork.

                                                        dhhdjbd Yes I am in a user profile.

                                                        I was under the impression that you were only supposed to use the owner profile to install software.

                                                        So now I'd have to either leave the phone in the owner profile for receiving calls, or switch to the owner profile in order to block the call (then switch back--just like turning on the hot spot).

                                                        By the way if it's a text, I can block it from within the text app, as a user, so it's obviously possible to implement this.

                                                        In fact I was intending to gripe that I had to clear phone call notifications every time i switched to owner even though I had received the calls as a user. I guess I won't bother griping about that; the issue is far broader than that.